5.5.3 Kernel memory management....................................................................................................142
5.5.3.1 Support for NUMA servers................................................................................................142
5.5.3.2 Reverse map Virtual Memory............................................................................................143
5.5.3.3 Huge Translation Lookaside Buffers..................................................................................144
5.5.3.4 Remap_file_pages..............................................................................................................146
5.5.3.5 Page frame management....................................................................................................147
5.5.3.6 Memory area management.................................................................................................147
5.5.3.7 Noncontiguous memory area management.........................................................................148
5.5.4 Process address space.................................................................................................................148
5.5.5 Symmetric multiprocessing and synchronization........................................... ....................... .....150
5.5.5.1 Atomic operations.............................................................................................................150
5.5.5.2 Memory barriers.................................................................................................................150
5.5.5.3 Spin locks...........................................................................................................................151
5.5.5.4 Kernel semaphores.............................................................................................................151
5.6 Audit subsystem.................................................................................................................................151
5.6.1 Audit components.....................................................................................................................152
5.6.1.1 Audit kernel components....................................................................................................153
5.6.1.2 File system audit components............................................................................................156
5.6.1.3 User space audit components.............................................................................................157
5.6.2 Audit operation and configuration options.................................................................................158
5.6.2.1 Configuration.....................................................................................................................158
5.6.2.2 Operation............................................................................................................................160
5.6.3 Audit records ............................................................................................................................161
5.6.3.1 Audit record generation......................................................................................................161
5.6.3.2 Audit record format............................................................................................................166
5.6.4 Audit tools..................................................................................................................................168
5.6.4.1 auditctl...............................................................................................................................168
5.6.4.2 ausearch..............................................................................................................................168
5.6.5 Login uid association.................................................................................................................169
5.7 Kernel modules.................................................................................................................................169
5.7.1 Linux Security Module framework............................................................................................170
5.7.2 LSM capabilities module ...........................................................................................................172
5.7.3 LSM AppArmor module............................................................................................................172
5.8 AppArmor..........................................................................................................................................172
5.8.1 AppArmor administrative utilities..............................................................................................172
5.8.2 AppArmor access control functions...........................................................................................174
7